105 matches found
SQL Injection Vulnerability in Ke361 (CNVD-2021-24525)
Ke361 is an open source Taobao system. Ke361 suffers from a SQL injection vulnerability. An attacker can exploit this vulnerability to obtain sensitive database data...
RGCMS suffers from a file upload vulnerability (CNVD-2021-24705)
RGCMS is an open source building management system. RGCMS has a file upload vulnerability that can be exploited by an attacker to gain server control privileges...
Monica Cross-Site Scripting Vulnerability (CNVD-2021-12659)
Monica is an open source personal relationship management system. A stored cross-site scripting vulnerability exists in the Contacts page in Monica 2.19.1. The vulnerability can be exploited to conduct cross-site scripting attacks via the Middle Name field...
Command Execution Vulnerability in Five Fingers CMS (CNVD-2021-16342)
Five Fingers CMS is an open source content management system that supports LNAMP architecture. Five Fingers CMS has a command execution vulnerability that can be exploited by attackers to gain control of the web server...
Command execution vulnerability in Five Fingers CMS backend (CNVD-2021-16339)
Five Fingers CMS is an open source content management system that supports LNAMP architecture. Five Fingers CMS backend has a command execution vulnerability that can be exploited by attackers to gain control of the web server...
Directory Traversal Vulnerability in Five Fingers CMS Backend
Five Fingers CMS is an open source content management system that supports LNAMP architecture. Five Fingers CMS backend has a directory traversal vulnerability that can be exploited by attackers to obtain sensitive information...
Command execution vulnerability in Five Fingers CMS backend (CNVD-2021-16338)
Five Fingers CMS is an open source content management system that supports LNAMP architecture. Five Fingers CMS backend has a command execution vulnerability that can be exploited by attackers to gain control of the web server...
Information leakage vulnerability in YzmCMS
YzmCMS is a lightweight open source content management system based on PHP Mysql architecture, YzmCMS can run on Linux, Windows, MacOSX, Solaris and other platforms. YzmCMS information leakage vulnerability , attackers can use the vulnerability to obtain sensitive user information...
IBOS Enterprise Collaboration Management Software Business Edition Has XSS Vulnerabilities
IBOS Enterprise Collaboration Management Software is an open source office OA system developed by Shenzhen BOS Xiechuang Network Technology Co. IBOS enterprise collaborative management software commercial version of the XSS vulnerability, attackers can use the vulnerability to obtain user cookie...
Ec-cube Input Validation Error Vulnerability
Ec-cube is an open source e-commerce system of the Japanese company Ec-cube . An input validation error vulnerability exists in EC-CUBE versions 3.0.5 through 3.0.18, which allows remote attackers to exploit the vulnerability to cause a denial of service DoS condition via an unspecified vector...
Linux kernel post-release reuse vulnerability (CNVD-2021-13673)
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A use-after-free vulnerability exists in versions of Linux kernel prior to 5.2.6, which stems from the fact that on NUMA systems, the Linux fair scheduler has a use-after-free ...
Logic Flaw Vulnerability in LeShang Mall Open Source System (CNVD-2020-52345)
LeShangMall is a lightweight mall website management system, based on Thinkphp5+Mysql architecture, can run on Linux, Windows, MacOSX, Solaris and other platforms, the template is separated from the program, support for custom pseudo-static, the front template using DIV + CSS design can be orient...
Logic Flaw Vulnerability in LeShang Mall Open Source System (CNVD-2020-50730)
LeShangMall is a lightweight mall website management system, based on Thinkphp5+Mysql architecture, can run on Linux, Windows, MacOSX, Solaris and other platforms, the template is separated from the program, support for custom pseudo-static, the front template using DIV + CSS design can be orient...
OpenClinic GA has an unspecified vulnerability
OpenClinic GA is an open source hospital information management system. The system supports financial management, clinical management and laboratory management and other functions. A security vulnerability exists in OpenClinic GA version 5.09.02 and version 5.89.05b. An attacker can exploit this...
Extreme CMS suffers from SQL injection vulnerability (CNVD-2020-33092)
Extreme CMS is an enterprise-level open source content building system. Extreme CMS has a SQL injection vulnerability that can be exploited by attackers to obtain sensitive database information...
SQL Injection Vulnerability in Dm Website Building System
DM enterprise building system is developed by php + mysql for small and medium-sized enterprise website construction of a set of open source cms. Dm website builder system has a SQL injection vulnerability , attackers can use the vulnerability to obtain database sensitive information...
Command Execution Vulnerability in imcat Backend
imcat is a PHP-based open source website building system . imcat backend there is a command execution vulnerability, attackers can use the vulnerability to obtain control of the web server...
ShopsN open source mall system sa*** function SQL injection vulnerabilities exist
ShopsN open source mall system is a product of Shanghai Yiso Network Technology Co., Ltd., a full-featured in line with enterprise-class commercial standards for free commercial use of the open source online store full network system . ShopsN open source mall system sa function there are SQL...
File Upload Vulnerability in Scarecrow Enterprise Website
The Inari Enterprise Station is an open source simple and compact free enterprise website system based on PHP+Sqlite/MySQL. Scarecrow Enterprise Station has a file upload vulnerability that can be exploited by attackers to gain access to the web server...
XSS Vulnerability in Born Creative OA System
Born Creative OA office system for the first domestic open source OA software producers, using the leading B / S architecture, cross-platform language php + mysql and other flexible applications, is one of China's most extensive user base of OA systems. Born Creative OA system there are XSS...